申し訳ありませんが、この言語ではまだご利用いただけません

Polaris Platform | Unified platform for managing software security and compliance.
fAST Static | Unified platform for managing software security and compliance.
fAST SCA | Unified platform for managing software security and compliance.
fAST Dynamic | Unified platform for managing software security and compliance.

Coverity Static | Static analysis tool for detecting software defects and vulnerabilities.
Black Duck SCA | Software composition analysis to manage open source security and license compliance.
Continuous Dynamic | Continuous dynamic application security testing.
Seeker Interactive | Interactive application security testing tool for detecting vulnerabilities.
Software Risk Manager ASPM | Application security posture management tool for risk management.
Defensics Protocol Fuzzing | Protocol fuzzing tool to identify and fix security flaws.

Code Sight IDE Plug-in | Integrated development environment plug-in for real-time security feedback.
SCM Integrations | Source code management integrations for seamless security checks.
Build & CI Tool Integrations | Integrations with build and continuous integration tools.
Developer Workflow Integrations | Tools to integrate security into the developer workflow.
3rd-Party AST Tool Integrations | Integrations with third-party application security testing tools.
Cloud Deployment Integrations | Integrations for securing cloud deployments.

Open Source & Security Audits | Comprehensive technical due diligence services for M&A.

AI-generated code | Harness the power of AI coding assistants while managing the risks.
API Security Testing | Manage software risks with a holistic API security testing program.
AppSec Consolidation | Simplify your application security program
Application Security Testing | Solutions to address security risks at all stages of the application life cycle.
DevSecOps | Solutions to help shift security left without slowing down your development teams.
Software Supply Chain Security | Solutions to identify and manage software supply chain risks end-to-end.
Manage AppSec Risk | Scale your application security program without increasing complexity or adding friction.
Cloud & Container Security | Optimize your applications for secure deployment and operation in the cloud.
Open Source License Compliance | Effective solutions for ensuring open source license compliance.
M&A Due Diligence | Identify software risks that could negatively impact the value of acquired IP.
Quality & Security Standards Compliance | Ensure your software complies with the standards critical to customers and regulators.

Static Analysis (SAST) | Analyzing code for security vulnerabilities without executing it.
Software Composition Analysis (SCA) | Analyzing software components for security and license compliance.
Dynamic Analysis (DAST) | Testing running applications for security vulnerabilities.
Interactive Analysis (IAST) | Real-time security testing during application execution.
Penetration Testing | Simulated cyberattacks to identify vulnerabilities.
Mobile Application Security Testing (MAST) | Ensuring the security of mobile applications.
Application Security Posture Management (ASPM) | Managing and improving application security posture.
Fuzz Testing | Identifying vulnerabilities by inputting random data to applications.

Automotive | Security solutions for automotive industry applications.
Financial Services | Security solutions tailored for financial services.
IoT & Embedded | Security for Internet of Things and embedded systems.
Medical Device | Security solutions for medical devices.
Public Sector | Security solutions for government and public sector organizations.

Dev and DevOps Teams | Security tools and practices for development and DevOps teams.
Security Teams | Solutions and support for dedicated security teams.
Legal Teams | Resources and compliance tools for legal teams.

埋め込みセキュリティの概要

コースの説明

埋め込みデバイスに関連するセキュリティ上の懸念事項を理解できるようになります。埋め込みデバイスを保護するために必要なセキュリティの概念について説明し、この分野で頻繁に発生している脆弱性と攻撃手法について紹介します.

Delivery Format: eLearning

Duration: 1 hour

Level: 初級

Intended Audience:

Prerequisites:

1. 埋め込みデバイスの概要

2. 埋め込みデバイスのセキュリティの懸念事項

3. 埋め込みデバイスの設計上の欠陥

4. 埋め込みハードウェアの脆弱性

5. 埋め込みデバイスのファームウェアの脆弱性

6. ハードウェア偵察攻撃

7. チップ通信プロトコル攻撃

8. 埋め込みシステムでの通信攻撃